You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@continuum.apache.org by "Wendy Smoak (JIRA)" <ji...@codehaus.org> on 2010/02/08 16:54:55 UTC

[jira] Created: (CONTINUUM-2461) Make used cached credentials a global setting

Make used cached credentials a global setting
---------------------------------------------

                 Key: CONTINUUM-2461
                 URL: http://jira.codehaus.org/browse/CONTINUUM-2461
             Project: Continuum
          Issue Type: Improvement
          Components: SCM
    Affects Versions: 1.3.4
            Reporter: Wendy Smoak


Users in a corporate environment are required to change their passwords quite often, which leads to locked accounts if Continuum has stored the old password.  Besides that, storing passwords in plain text as Continuum does violates the security rules.

Therefore, we train everyone to check the "use cached credentials" box when adding projects, and run a daily cron job with an sql statement to modify the database (set the flag, delete userid/password) for those who forget.

Since we want Continuum to NEVER store scm credentials and ALWAYS use the cached credentials we provide, we would like to set this option once, globally, rather than have it set on every project.



-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] Updated: (CONTINUUM-2461) Make used cached credentials a global setting

Posted by "Brett Porter (JIRA)" <ji...@codehaus.org>.

     [ http://jira.codehaus.org/browse/CONTINUUM-2461?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Brett Porter updated CONTINUUM-2461:
------------------------------------

    Fix Version/s: Backlog

> Make used cached credentials a global setting
> ---------------------------------------------
>
>                 Key: CONTINUUM-2461
>                 URL: http://jira.codehaus.org/browse/CONTINUUM-2461
>             Project: Continuum
>          Issue Type: Improvement
>          Components: SCM
>    Affects Versions: 1.3.4
>            Reporter: Wendy Smoak
>             Fix For: Backlog
>
>
> Users in a corporate environment are required to change their passwords quite often, which leads to locked accounts if Continuum has stored the old password.  Besides that, storing passwords in plain text as Continuum does violates the security rules.
> Therefore, we train everyone to check the "use cached credentials" box when adding projects, and run a daily cron job with an sql statement to modify the database (set the flag, delete userid/password) for those who forget.
> Since we want Continuum to NEVER store scm credentials and ALWAYS use the cached credentials we provide, we would like to set this option once, globally, rather than have it set on every project.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira